$ rpki-client -vvf rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft File: oiK21tBSghQiHUrOpH4axhHvQno.mft (raw, json) Hash identifier: 8U6ViIuHLZIPLqfc9/gkZD688EKYANmoJgQln8HJCto= Subject key identifier: C4:21:50:4A:8D:68:A6:F6:BF:60:88:B6:AF:5D:AA:B2:E6:81:57:1F Authority key identifier: A2:22:B6:D6:D0:52:82:14:22:1D:4A:CE:A4:7E:1A:C6:11:EF:42:7A Certificate issuer: /CN=A911F177/serialNumber=A222B6D6D0528214221D4ACEA47E1AC611EF427A Certificate serial: 07D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiK21tBSghQiHUrOpH4axhHvQno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft Manifest number: 07D1 Signing time: Sat 18 Oct 2025 22:28:17 +0000 Manifest this update: Sat 18 Oct 2025 22:28:17 +0000 Manifest next update: Sat 25 Oct 2025 22:28:17 +0000 Files and hashes: 1: oiK21tBSghQiHUrOpH4axhHvQno.crl (hash: ljN4mBtgswa0XVQPAg+YL//qWy+d8Pj47Te629VSYJg=) 2: 90203ACEDEE811EBA82BEF41C4F9AE02.roa (hash: 90Ps/BWPXZ61HxNbkmbrT/5Kexde1qpWyvX+qPISegQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.crl rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiK21tBSghQiHUrOpH4axhHvQno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:28:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2006 (0x7d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F177, serialNumber=A222B6D6D0528214221D4ACEA47E1AC611EF427A Validity Not Before: Oct 18 22:28:17 2025 GMT Not After : Oct 25 22:28:17 2025 GMT Subject: CN=68f41481-108b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:0e:09:d5:15:d8:ea:c4:8c:d1:3c:57:fd:4d: c2:4b:76:d5:30:1d:18:46:22:6e:35:2d:c7:36:d6: 84:81:bd:65:64:b1:bb:f8:f4:14:40:cb:1a:96:62: 2c:7a:50:cd:20:40:63:f5:c5:c0:5f:b0:ca:5b:0b: fe:64:c5:39:8f:2b:8e:10:0d:1f:7a:b7:30:df:5b: 78:5c:5f:2c:21:1c:58:79:b5:82:b0:7d:a7:c2:65: 14:f5:b7:96:98:7c:9d:5f:4a:b0:b3:63:6f:2d:f7: 34:78:ca:07:fd:2d:aa:99:80:ed:1a:de:4f:d4:e2: f3:81:26:9a:43:53:d1:1b:d5:7d:db:86:3b:51:5e: 40:f9:db:5b:bb:76:36:cc:37:41:bd:07:15:a2:57: 98:ce:57:65:12:64:df:40:2e:8d:07:4e:29:82:dc: 33:81:74:35:d1:6e:b6:19:0e:39:d0:55:7e:d2:1a: c6:61:ae:2e:24:22:03:15:b8:50:a8:a1:c2:da:7e: 1e:69:19:cc:68:e7:71:ca:ea:bd:57:9d:71:0c:59: 27:2b:75:f7:c1:46:d5:6e:90:91:db:45:c7:f2:73: f8:93:b5:23:7c:0e:63:f0:35:ea:3a:cd:b5:0f:ed: 25:38:ab:f3:c8:58:fc:4a:40:20:a0:b3:20:4b:e9: 86:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:21:50:4A:8D:68:A6:F6:BF:60:88:B6:AF:5D:AA:B2:E6:81:57:1F X509v3 Authority Key Identifier: keyid:A2:22:B6:D6:D0:52:82:14:22:1D:4A:CE:A4:7E:1A:C6:11:EF:42:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiK21tBSghQiHUrOpH4axhHvQno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:19:59:90:9e:08:82:4a:40:31:74:8b:55:11:95:30:c2:29: 65:6b:2e:93:1d:a4:93:8f:fe:aa:5a:9e:21:4e:e8:2a:9e:2e: 1d:92:f1:d6:03:71:00:18:d7:02:7e:41:53:14:eb:04:c7:dc: 1d:0a:63:8f:f8:68:28:f9:50:9e:65:2e:12:20:d3:ec:87:a9: f4:c0:bc:86:fe:fb:5b:ed:33:f1:43:69:a0:ae:6c:d4:5a:46: 6c:4f:ca:78:02:d5:29:f8:e0:78:b0:0c:3e:10:77:95:38:53: 60:a6:d7:dd:b9:f8:5a:86:ed:ec:67:0c:63:90:d8:4a:6a:2e: 1c:a3:20:66:63:33:1b:d4:6a:b0:cc:43:91:98:7c:89:04:69: 6f:4e:72:8c:81:a5:58:31:b1:74:88:22:7a:fc:bd:9f:56:4d: ee:db:24:8a:33:78:88:eb:0a:ca:be:3e:56:a0:67:f0:b2:77: a7:48:45:7e:3f:09:21:74:69:72:12:ed:13:60:b7:da:43:fe: e2:b8:3c:ca:8a:6b:c4:f4:e4:33:a7:46:ec:69:f1:e1:b1:43: f3:68:11:fa:7d:49:96:50:08:91:c4:0d:78:41:79:d0:4c:cc: 93:cd:0d:84:4b:2c:a9:18:78:29:26:71:0d:ce:ab:ab:ba:ae: 66:40:9e:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUYxNzcxMTAvBgNVBAUTKEEyMjJCNkQ2RDA1MjgyMTQyMjFENEFDRUE0N0UxQUM2 MTFFRjQyN0EwHhcNMjUxMDE4MjIyODE3WhcNMjUxMDI1MjIyODE3WjAYMRYwFAYD VQQDEw02OGY0MTQ4MS0xMDhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArQ4J1RXY6sSM0TxX/U3CS3bVMB0YRiJuNS3HNtaEgb1lZLG7+PQUQMsalmIs elDNIEBj9cXAX7DKWwv+ZMU5jyuOEA0fercw31t4XF8sIRxYebWCsH2nwmUU9beW mHydX0qws2NvLfc0eMoH/S2qmYDtGt5P1OLzgSaaQ1PRG9V924Y7UV5A+dtbu3Y2 zDdBvQcVoleYzldlEmTfQC6NB04pgtwzgXQ10W62GQ450FV+0hrGYa4uJCIDFbhQ qKHC2n4eaRnMaOdxyuq9V51xDFknK3X3wUbVbpCR20XH8nP4k7UjfA5j8DXqOs21 D+0lOKvzyFj8SkAgoLMgS+mGyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMQhUEqN aKb2v2CItq9dqrLmgVcfMB8GA1UdIwQYMBaAFKIittbQUoIUIh1KzqR+GsYR70J6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjE3Ny84MkVFNTgyNjBF MDYxMUVCODY4NzZFNTNDNEY5QUUwMi9vaUsyMXRCU2doUWlIVXJPcEg0YXhoSHZR bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29pSzIxdEJTZ2hRaUhVck9wSDRheGhIdlFuby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjE3Ny84MkVFNTgyNjBFMDYxMUVCODY4NzZFNTNDNEY5QUUwMi9vaUsyMXRCU2do UWlIVXJPcEg0YXhoSHZRbm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIGVmQngiCSkAxdItVEZUwwillay6THaSTj/6qWp4hTugqni4dkvHW A3EAGNcCfkFTFOsEx9wdCmOP+Ggo+VCeZS4SINPsh6n0wLyG/vtb7TPxQ2mgrmzU WkZsT8p4AtUp+OB4sAw+EHeVOFNgptfdufhahu3sZwxjkNhKai4coyBmYzMb1Gqw zEORmHyJBGlvTnKMgaVYMbF0iCJ6/L2fVk3u2ySKM3iI6wrKvj5WoGfwsnenSEV+ PwkhdGlyEu0TYLfaQ/7iuDzKimvE9OQzp0bsafHhsUPzaBH6fUmWUAiRxA14QXnQ TMyTzQ2ESyypGHgpJnENzquruq5mQJ7h -----END CERTIFICATE-----Generated at Mon Oct 20 17:49:37 2025 by rpki-client